﻿using System;
using System.Collections.Generic;
using System.Linq;
using System.Web;
using System.Web.Mvc;
using System.Web.Routing;
using System.Web.Security;
using MAPDavy.WebMVC3.Models;
using MvcSiteMapProvider;

namespace MAPDavy.WebMVC3.Controllers
{
    public class AccountController : Controller
    {
        [Authorize(Roles="admin")]
        public ActionResult Index()
        {
            var usuarios = new List<UserDTO>();

            foreach (MembershipUser item in Membership.GetAllUsers())
            {
                var u = new UserDTO()
                {
                    UserName = item.UserName,
                    Email = item.Email,
                    IsOnline = item.IsOnline,
                    LastActivityDate = item.LastActivityDate,
                    CreationDate = item.CreationDate,
                    IsLockedOut = item.IsLockedOut,
                    LastLockoutDate = item.LastLockoutDate,
                    LastLoginDate = item.LastLoginDate
                };

                usuarios.Add(u);
            }

            return View(usuarios);
        }

        [MvcSiteMapNode(Title = "Cambiar Password", ParentKey = "admin")]
        [Authorize(Roles = "admin")]
        public ActionResult CambiarPassword(string id="")
        {
             if (id=="")
             {
                 return RedirectToAction("Index", "Account");
             }

             var u = Membership.GetUser(id);

             if (u == null)
             {
                 return RedirectToAction("Index", "Account");
             }

             var user = new ChangePasswordAdminModel() { UserName = u.UserName };

             return View(user);
        }

        [HttpPost]
        [Authorize(Roles = "admin")]
        public ActionResult CambiarPassword(FormCollection _form)
        {
            var username = _form["UserName"].ToString();
            var pws = _form["NewPassword"].ToString();

            var user = Membership.GetUser(username);
            user.ChangePassword(user.ResetPassword(), pws);

            return RedirectToAction("Index", "Account");
        }

        [MvcSiteMapNode(Title = "Configurar Roles", ParentKey = "admin")]
        public ActionResult AgignarRol(string id = "")
        {
            if (id == "")
            {
                return RedirectToAction("Index", "Account");
            }

            var user = Membership.GetUser(id);

            if (user==null)
            {
                return RedirectToAction("Index", "Account");
            }

            var allRoles = Roles.GetAllRoles();
            var usuRoles = Roles.GetRolesForUser(user.UserName);

            var rolesDisponibles = allRoles.Except(usuRoles); 

            var userRoles = from r in Roles.GetRolesForUser(user.UserName)
                            select new { Id = r, Descripcion = r };

            var roles = from r in rolesDisponibles
                           select new { Id = r, Descripcion = r };

            ViewData["roles"] = new SelectList(roles, "Id", "Descripcion");
            ViewData["userRoles"] = new SelectList(userRoles, "Id", "Descripcion");

            var usuarioDTO = new UserDTO()
            {
                UserName = user.UserName,
                IsLockedOut = user.IsLockedOut,
                IsOnline = user.IsOnline
            };

            return View(usuarioDTO);
        }

        [HttpPost]
        [Authorize(Roles = "admin")]
        public ActionResult AddRol(string userName, string rol)
        {
            if (!Roles.IsUserInRole(userName, rol))
            {
                Roles.AddUserToRole(userName, rol);

                return Json(true, JsonRequestBehavior.AllowGet);
            }
            else
            {
                return Json(false, JsonRequestBehavior.AllowGet);
            }
        }

        [HttpPost]
        [Authorize(Roles = "admin")]
        public ActionResult RemoveRol(string userName, string rol)
        {
            if (Roles.IsUserInRole(userName, rol))
            {
                Roles.RemoveUserFromRole(userName, rol);

                return Json(true, JsonRequestBehavior.AllowGet);
            }
            else
            {
                return Json(false, JsonRequestBehavior.AllowGet);
            }
        }

        [HttpPost]
        [Authorize(Roles = "admin")]
        public ActionResult Delete(string id)
        {
            if (Membership.GetUser(id)!= null)
            {
                return Json(Membership.DeleteUser(id, true), JsonRequestBehavior.AllowGet);
            }
            else
            {
                return Json(false, JsonRequestBehavior.AllowGet);
            }
        }
        //
        // GET: /Account/LogOn

        public ActionResult LogOn()
        {
            return View();
        }

        //
        // POST: /Account/LogOn

        [HttpPost]
        public ActionResult LogOn(LogOnModel model, string returnUrl)
        {
            if (ModelState.IsValid)
            {
                if (Membership.ValidateUser(model.UserName, model.Password))
                {
                    FormsAuthentication.SetAuthCookie(model.UserName, model.RememberMe);
                    if (Url.IsLocalUrl(returnUrl) && returnUrl.Length > 1 && returnUrl.StartsWith("/")
                        && !returnUrl.StartsWith("//") && !returnUrl.StartsWith("/\\"))
                    {
                        return Redirect(returnUrl);
                    }
                    else
                    {
                        return RedirectToAction("Index", "Home");
                    }
                }
                else
                {
                    ModelState.AddModelError("", "El Usuario o password son incorectos.");
                }
            }

            // If we got this far, something failed, redisplay form
            return View(model);
        }

        public ActionResult Login()
        {
            return View();
        }

        //
        // POST: /Account/LogOn

        [HttpPost]
        public ActionResult Login(LogOnModel model, string returnUrl)
        {
            if (ModelState.IsValid)
            {
                if (Membership.ValidateUser(model.UserName, model.Password))
                {
                    FormsAuthentication.SetAuthCookie(model.UserName, model.RememberMe);
                    if (Url.IsLocalUrl(returnUrl) && returnUrl.Length > 1 && returnUrl.StartsWith("/")
                        && !returnUrl.StartsWith("//") && !returnUrl.StartsWith("/\\"))
                    {
                        return Redirect(returnUrl);
                    }
                    else
                    {
                        return RedirectToAction("Index", "Home");
                    }
                }
                else
                {
                    ModelState.AddModelError("", "El Usuario o password son incorectos.");
                }
            }

            // If we got this far, something failed, redisplay form
            return View(model);
        }

        //
        // GET: /Account/LogOff

        public ActionResult LogOff()
        {
            FormsAuthentication.SignOut();

            return RedirectToAction("Index", "Home");
        }

        //
        // GET: /Account/Register

        public ActionResult Register()
        {
            return View();
        }

        //
        // POST: /Account/Register

        [HttpPost]
        [Authorize(Roles = "admin")]
        public ActionResult Register(RegisterModel model)
        {
            if (ModelState.IsValid)
            {
                // Attempt to register the user
                MembershipCreateStatus createStatus;
                Membership.CreateUser(model.UserName, model.Password, model.Email, null, null, true, null, out createStatus);

                if (createStatus == MembershipCreateStatus.Success)
                {
                    //FormsAuthentication.SetAuthCookie(model.UserName, false /* createPersistentCookie */);
                    return RedirectToAction("Index", "Account");
                }
                else
                {
                    ModelState.AddModelError("", ErrorCodeToString(createStatus));
                }
            }

            // If we got this far, something failed, redisplay form
            return View(model);
        }

        //
        // GET: /Account/ChangePassword

        [Authorize]
        [Authorize]
        public ActionResult ChangePassword()
        {
            return View();
        }

        //
        // POST: /Account/ChangePassword

        [HttpPost]
        [Authorize]
        public ActionResult ChangePassword(ChangePasswordModel model)
        {
            if (ModelState.IsValid)
            {

                // ChangePassword will throw an exception rather
                // than return false in certain failure scenarios.
                bool changePasswordSucceeded;
                try
                {
                    MembershipUser currentUser = Membership.GetUser(User.Identity.Name, true /* userIsOnline */);
                    changePasswordSucceeded = currentUser.ChangePassword(model.OldPassword, model.NewPassword);
                }
                catch (Exception)
                {
                    changePasswordSucceeded = false;
                }

                if (changePasswordSucceeded)
                {
                    return RedirectToAction("Index","Home");
                }
                else
                {
                    ModelState.AddModelError("", "The current password is incorrect or the new password is invalid.");
                }
            }

            // If we got this far, something failed, redisplay form
            return View(model);
        }

        //
        // GET: /Account/ChangePasswordSuccess

        public ActionResult ChangePasswordSuccess()
        {
            return View();
        }

        #region Status Codes
        private static string ErrorCodeToString(MembershipCreateStatus createStatus)
        {
            // See http://go.microsoft.com/fwlink/?LinkID=177550 for
            // a full list of status codes.
            switch (createStatus)
            {
                case MembershipCreateStatus.DuplicateUserName:
                    return "User name already exists. Please enter a different user name.";

                case MembershipCreateStatus.DuplicateEmail:
                    return "A user name for that e-mail address already exists. Please enter a different e-mail address.";

                case MembershipCreateStatus.InvalidPassword:
                    return "The password provided is invalid. Please enter a valid password value.";

                case MembershipCreateStatus.InvalidEmail:
                    return "The e-mail address provided is invalid. Please check the value and try again.";

                case MembershipCreateStatus.InvalidAnswer:
                    return "The password retrieval answer provided is invalid. Please check the value and try again.";

                case MembershipCreateStatus.InvalidQuestion:
                    return "The password retrieval question provided is invalid. Please check the value and try again.";

                case MembershipCreateStatus.InvalidUserName:
                    return "The user name provided is invalid. Please check the value and try again.";

                case MembershipCreateStatus.ProviderError:
                    return "The authentication provider returned an error. Please verify your entry and try again. If the problem persists, please contact your system administrator.";

                case MembershipCreateStatus.UserRejected:
                    return "The user creation request has been canceled. Please verify your entry and try again. If the problem persists, please contact your system administrator.";

                default:
                    return "An unknown error occurred. Please verify your entry and try again. If the problem persists, please contact your system administrator.";
            }
        }
        #endregion
    }
}
